Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/d30Me_VIcYhukSqf-z3fc0s_l6g.roa
File: d30Me_VIcYhukSqf-z3fc0s_l6g.roa (raw, json)
Hash identifier: STx4D4Tbd+6ZH9ESHKTeOW1ZvWV1F2zvftXLgCUjZfE=
Subject key identifier: 77:7D:0C:7B:F5:48:71:88:6E:91:2A:9F:FB:3D:DF:73:4B:3F:97:A8
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1DF4
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/d30Me_VIcYhukSqf-z3fc0s_l6g.roa
Signing time: Fri 01 Sep 2023 10:15:30 +0000
ROA not before: Fri 01 Sep 2023 10:15:30 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 49.158.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7668 (0x1df4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:15:30 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=777D0C7BF54871886E912A9FFB3DDF734B3F97A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:83:0a:1b:5e:45:f8:07:df:58:ee:0c:e0:38:
50:a4:f7:2a:dd:f4:8a:4c:a4:96:3f:10:67:50:df:
e5:81:5f:7b:cc:6b:91:4a:74:19:51:8b:b7:35:3e:
1b:a9:c9:7e:25:e0:9e:0c:23:16:0f:d6:0b:93:ab:
9e:5e:4d:4e:78:5e:00:87:42:5d:06:99:70:cf:02:
ff:5f:99:c7:97:dc:78:60:61:d9:28:c5:ad:09:87:
d8:4e:08:a2:b2:27:98:cf:59:84:92:58:79:74:7a:
74:74:17:fa:cf:9f:35:b2:5b:ac:fd:b6:4a:99:1d:
21:7e:32:15:ae:4d:10:aa:70:84:ca:ce:50:00:13:
f1:88:af:fe:0f:ce:4c:87:e3:ab:49:5d:8c:30:d3:
3c:ce:c9:c1:4f:12:b6:be:e7:75:90:a0:82:24:d6:
24:d2:82:46:40:66:86:4e:27:c4:96:ab:71:98:e2:
4a:40:82:17:39:15:e4:e3:31:5b:ed:0f:c5:79:7c:
e2:30:5b:cf:17:d1:b1:94:ca:ad:6b:33:c4:2b:5d:
ff:e5:23:bf:94:0d:e7:df:a9:a6:bd:b1:b8:5d:ea:
27:52:36:34:83:86:71:98:52:15:3b:dc:d3:be:fe:
60:37:c7:e9:bf:80:05:3e:ef:0d:32:0e:67:94:37:
65:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:7D:0C:7B:F5:48:71:88:6E:91:2A:9F:FB:3D:DF:73:4B:3F:97:A8
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/d30Me_VIcYhukSqf-z3fc0s_l6g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.81.0/24
Signature Algorithm: sha256WithRSAEncryption
04:1e:8a:9d:f5:46:26:c1:e3:6c:a7:e4:b7:08:83:fb:ae:ff:
0b:73:e8:78:bd:d4:a6:30:40:a4:5f:37:1a:b5:82:99:9a:47:
b6:1a:e6:71:02:0e:d7:54:f8:25:9f:bd:88:ba:8b:dc:25:11:
e0:99:7b:b8:0e:bf:17:af:c6:57:0c:a8:5b:4d:5a:b0:be:99:
ad:13:32:73:d8:41:77:25:de:80:98:95:38:f9:34:4f:83:e1:
7e:b5:5e:df:0e:54:86:6d:e0:29:4d:5c:4d:b4:e2:b0:93:50:
07:93:bb:02:43:f6:6b:1b:c2:4c:3e:96:ac:10:6d:9d:78:57:
91:4a:f7:34:ec:0f:f7:81:e8:fb:7e:3e:6a:50:34:14:8d:ef:
9e:ae:59:ae:40:3b:a3:24:60:90:7e:d7:cf:0a:41:41:e6:9c:
b8:ed:53:1c:e5:c6:0e:7a:18:6f:01:79:5d:74:95:a1:09:3e:
72:eb:02:90:0e:77:b4:02:20:80:85:83:38:96:ac:09:11:de:
27:f9:cc:05:39:a5:1d:2a:40:ad:02:4a:7b:b0:43:d6:57:22:
dc:80:8e:a6:16:bc:ee:e7:6c:7f:fd:cf:a5:4f:07:d7:c2:c5:
c0:51:0d:cf:a6:4a:85:60:5d:36:21:01:1b:3e:f4:e4:e0:f7:
e1:a0:70:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:35 2025 by rpki-client